audisp config management?
Closed this issue · 9 comments
Hi, you have an excellent looking module here, thank you for your work! I wanted to ask if you have any thoughts on adding the ability to manage config files for audisp?
For instance the ability to enable the syslog plugin or any other details that might be important.
That certainly sounds like a good idea, I'll look into it. If you have any resources or documentation you'd like to share please do so.
Unfortunately, I'm just getting started into this arena. I do have a requirement to configure audit message delivery to syslog via audisp, but I have yet to dive into it. If I can make any headway I'll post it here, or send a PR.
For what it's worth, it looks like there's a module that's doing the audisp stuff that might be worth looking at:
I had forgotten about tha NSA puppet modules, I'll use that as a reference and have at least a draft done this weekend for audispd support.
The master branch now has support for Audisp plugins, can you test from the master branch in Git to see if it meets your needs? If any tweaks are required I'd prefer to get them done before doing an official release on the Puppet Forge.
Will do! Thanks for the effort. It will take me a bit to get a test going, but I should be able to get back to you next week.
This is working for me on EL7.